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Listing of Claims 

1 . (Original) A method of recovering from a failure of a primary distribution 
processor which provides secure communications over a network in a distributed workload 
environment having target hosts which are accessed through the primary distribution processor 
by a common network address, the method comprising the steps of: 

providing to a backup distribution processor information sufficient to restart 
communications through the primary distribution processor utilizing network security; 
detecting the failure of the primary distribution processor; 

restarting the communications utilizing network security at the backup distribution 
processor utilizing the provided information; 

routing both inbound and outbound communications with target hosts utilizing the 
common network address and which are associated with a secure network communication 
through the backup distribution processor; and 

processing the inbound and outbound secure network communications at the backup 
distribution processor so as to provide network security processing of the inbound and outbound 
communications. 

2. (Original) A method according to Claim 1, further comprising the step of 
maintaining information sufficient to restart communications through the backup distribution 
processor accessible to at least one distribution processor other than the backup distribution 
processor. 

3. (Original) A method according to Claim 1, wherein the step of providing 
information sufficient to restart communications comprises the steps of transmitting network 
security information from which network security relationships associated with the 
communications through the primary distribution processor utilizing network security can be 
re-established at the backup distribution processor from the primary distribution processor to the 
backup distribution processor prior to failure of the primary distribution processor. 
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4. (Original) A method according to Claim 1 , wherein the step of providing 
information sufficient to restart communications comprises the step of storing in a common 
storage accessible to the backup distribution processor, network security information from which 
network security relationships associated with the communications through the primary 
distribution processor can be re-established at the backup distribution processor. 

5. (Original) A method according to Claim 4, wherein the step of restarting the 
communications utilizing network security at the backup distribution processor utilizing the 
provided information, comprises the following steps carried out by the backup distribution 
processor: 

obtaining the network security information from the common storage; 

establishing the security relationships associated with the communications through the 
primary distribution processor at the backup distribution processor; and 

notifying target hosts associated with the communications that the backup distribution 
processor has taken ownership of the communications. 

6. (Original) A method according to Claim 5, further comprising the step of 
clearing the network security information from the common storage subsequent to the backup 
distribution processor obtaining the network security information from the common storage. 

7. (Original) A method according to Claim 5, further comprising the step of 
storing in the common storage, network security information from which network security 
relationships associated with the communications through the backup distribution processor can 
be re-established at another distribution processor. 

8. (Original) A method according to Claim 5, further comprising the step of 
identifying as non-distributed communications, communications to the backup distribution 
processor utilizing network security which were previously distributed communications routed 
through the primary distribution processor. 
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9. (Original) A method according to Claim 5, wherein the network security 
comprises Internet Protocol Security (IPSec). 

1 0. (Original) A method according to Claim 9, wherein the network security 
information stored in the common storage includes at least one of Phase 1 Security Association 
(SA) information, Phase 2 SA information and information relating the Phase 1 SA information 
to the Phase 2 SA information. 

11-19. Cancelled. 

20. (Original) A system for recovering from a failure of a primary distribution 
processor which provides secure communications over a network in a distributed workload 
environment having target hosts which are accessed through the primary distribution processor 
by a common network address, comprising: 

means for providing to a backup distribution processor information sufficient to restart 
communications through the primary distribution processor utilizing network security; 

means for detecting the failure of the primary distribution processor; 

means for restarting the communications utilizing network security at the backup 
distribution processor utilizing the provided information; 

means for routing both inbound and outbound communications with target hosts utilizing 
the common network address and which are associated with a secure network communication 
through the backup distribution processor; and 

means for processing the inbound and outbound secure network communications at the 
backup distribution processor so as to provide network security processing of the inbound and 
outbound communications. 

21. Cancelled. 

22. (Original) A computer program product for recovering from a failure of a 
primary distribution processor which provides secure communications over a network in a 
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distributed workload environment having target hosts which are accessed through the primary 
distribution processor by a common network address, comprising: 

a computer readable medium having computer readable program code embodied therein, 
the computer readable program code comprising: 

computer readable program code which provides to a backup distribution processor 
information sufficient to restart communications through the primary distribution processor 
utilizing network security; 

computer readable program code which detects the failure of the primary distribution 
processor; 

computer readable program code which restarts the communications utilizing network 
security at the backup distribution processor utilizing the provided information; 

computer readable program code which routes both inbound and outbound 
communications with target hosts utilizing the common network address and which are 
associated with a secure network communication through the backup distribution processor; and 

computer readable program code which processes the inbound and outbound secure 
network communications at the backup distribution processor so as to provide network security 
processing of the inbound and outbound communications. 



23. Cancelled. 



